|
mythicknight posted:I have a giant Cisco Unity voicemail box I want to get voicemails out of. Problem: the unity web portal sucks rear end, and I'm talking about 100+ voicemails I'd have to manually click on to save as etc. Unity or Unity Connection? What version?
|
#
?
Jul 10, 2017 14:36
|
|
|
|
| # ? May 31, 2024 06:29 |
|
|
Do you have voicemail to email set up? You should be able to forward them to an SMTP address as WAV files. There are also a couple of programs that may do what you want that interface with CUC. Really the admin web GUI isn't that bad. http://www.ciscounitytools.com/SiteList/AllDownloads/alldownloads.html
|
|
#
?
Jul 10, 2017 14:47
|
|
|
Bigass Moth posted:Do you have voicemail to email set up? You should be able to forward them to an SMTP address as WAV files.  That one should do what they want.
|
|
#
?
Jul 10, 2017 15:15
|
|
|
n0tqu1tesane posted:Unity or Unity Connection? What version? Cisco Unity Connection 10.5.2 Bigass Moth posted:Do you have voicemail to email set up? You should be able to forward them to an SMTP address as WAV files. No voicemail to email unfortunately. I think we do have voicemail notifications by email enabled though. n0tqu1tesane posted:
Thank you both, I'll try this out and see.
|
|
#
?
Jul 10, 2017 15:48
|
|
|
Alright, I was able to get .eml files out of Unity Connection with .wav attachments to them with that tool. But the .wavs arent playing. I've tried WMP, VLC, foobar (which gave a "missing ACM codec" error), etc. I installed LAME, but I'm not sure what I'm still missing. I also noticed the file size is different. If I pull the wav for an 8 second voicemail from the web inbox, its 130~KB and plays fine. If I pull the same wav from the eml file from the tool, its 8KB and trying to play it results in above errors. God I hate voicemail.
|
|
#
?
Jul 11, 2017 15:41
|
|
|
Maybe change the codec with Audacity? It sounds like something is going wrong with the supplemental tool. Are they downloading locally as .wav files?
|
|
#
?
Jul 11, 2017 15:53
|
|
|
Bigass Moth posted:Maybe change the codec with Audacity? It sounds like something is going wrong with the supplemental tool. Are they downloading locally as .wav files? Audacity isn't recognizing it at all. I'm using the tool locally on my PC and getting the wav from the eml it saves here.
|
|
#
?
Jul 11, 2017 17:19
|
|
|
If they are secured messages I don't believe you can archive them that way. COBRAS backs up mail too but I don't know if you can get access to the contents through there.
|
|
#
?
Jul 11, 2017 18:05
|
|
|
Hi it's me again. More DDOS poo poo: How exactly do I increase my softIRQ capacity? I've found a cool new way that I die when attacked. I've got some reasonably sized 4 core VMs that are doing NAT through IPtables. If I get poked juuust right the softIRQ load on these nat boxes go through the roof and then die, and stay dead until rebooted. Part of the problem here is software side in that one of the two main uses for these nat boxes is logging out to an internet destination. Something gets hit (even if it's not the nat boxes themselves) and falls over, internally a fuckload of error logs get generated and forced through the nat box. SoftIRQ goes waay up, performance degrades, logs start to queue up faster than they can be emitted in the degraded state and after a few minutes the machine is dead. At this point external monitoring goes off saying the half DC is offline because nobody is able to send their heartbeats, internally accessible public IPs are no longer accessible, etc and generally the situation is unpleasant. I've already doubled the number of nat boxes that are available to handle that type of sudden traffic flood, but as of a few days ago it has become apparent even that is not enough. I've considered the possibility of replacing these IPtables boxes with pfsense or something, but that's still a VM that needs to process connections, read rules in software and deal with VM CPU co-stops so I'm not convinced it would do any good. Buying a dedicated piece of hardware is not out of the question because this needs to stop.  I rage-blocked ICMP because that was one of the attack vectors and I'm getting tired of this poo poo. But then apparently this is a thing that exists https://blog.cloudflare.com/path-mtu-discovery-in-practice/  Unrelated: does anyone have an sflow collector/visualizer they like? I set up Scrutinizer's free trial a few months ago and it's nice, but maybe there is something better Methanar fucked around with this message at 21:55 on Jul 11, 2017 |
|
#
?
Jul 11, 2017 21:47
|
|
|
You're probably hitting a state limit related to connection tracking.Methanar posted:More DDOS poo poo: How exactly do I increase my softIRQ capacity? I've found a cool new way that I die when attacked. The softIRQ spikes are probably the penalty for carrying state related to NAT/connection tracking. You can increase the table size and/or decrease the how long connections are tracked. Kentik is nice for flows. You could also do pmacct and feed into grafana for cheap.
|
|
#
?
Jul 11, 2017 23:11
|
|
|
Has anybody deployed Firepower in AWS? I'm struggling to wrap my head around it, especially from the lack of NAT abilities. Basically wanting to have a public / private subnet and make a NGFWv the gateway between the two so all traffic goes through it. Do I need to make it a gateway between VPCs instead? How does SNAT work when I have to tie it to an AWS interface with a single IP?
|
|
#
?
Jul 12, 2017 02:24
|
|
|
Methanar posted:Hi it's me again. I recently had a problem with this as well for DNAT but I solved it with stateless NAT outside iptables using traffic-control.
|
|
#
?
Jul 12, 2017 16:16
|
|
|
Yea Kentik is great, it's a bit pricey, but allows for a lot of data in a nice visual format. Sorting etc etc.
|
|
#
?
Jul 12, 2017 17:50
|
|
|
How pricy is pricy? Our network is about to be used in a public visible way by a company at the very pointy end of the F500 list on a retail device. We need to up our DDoS detection game.
|
|
#
?
Jul 15, 2017 19:06
|
|
|
I talked to their sales people and while it was very nice, it didn't really give me what I was looking for, which was aiding making BGP decisions. I got quoted at 10k per year minimum buy-in. I didn't get real numbers for how much per device/number of flows but that was still double what perpetual licenses of Scrutinizer would cost me.
|
|
#
?
Jul 15, 2017 19:26
|
|
|
Kentik's pricing model is based on * Number of routers sending flows * Number of routers with full BGP feed to kentik * Flows per second they process (you could adjust sampling rate on your side here) It's a combination of all of those things. If you don't do the full BGP feeds it's a lot less useful. They may not even openly say it's an option to not have it, but I think it still is. Re: "aiding in bgp decisions", that sounds like a bad idea, what are you trying to achieve? We had an eng on our team buy Scrutinizer, we didn't get any use of it. Samplicator + NFSen + AS-STATS + other open sores stuff is much more useful IMO.
|
|
#
?
Jul 15, 2017 19:35
|
|
|
Basically I don't know what I'm doing. A few days ago I set up another 10g link and did some rebalancing of how outbound traffic is sent to better spread it all across my now 5 links. It was less than successful for my first few attempts My traffic and network has grown beyond the point where AS-path prepending is enough to get a proper spread across different carriers. Since I can't advertise blocks smaller than /24 I'm going to start needing to use different address space and advertise those address spaces differently. I'm going to need to be creative in which internal services get placed in which address spaces with what kind of route-maps to prefer which outbound paths. It's going to start becoming complicated and need better visibility than show int eth 1 and the different show ip bgp commands. I was hoping that there would be a product that can keep some kind of clear visualization of all that. Maybe I find that one wan provider has a significantly worse RTT for a specific geographical location which would be negatively impacting all kinds of real-time traffic, but that's hard to troubleshoot because 1/3 of my internal services are being advertised out of HE while 2/3 are being advertised out of NTT. And who knows what's going to happen when I start to mess around with the BGP metrics in another 6 months when I set up more connections. Probably I'll try to send 20 gbps out of a 10g link again because I'm operating blind and have essentially no way of knowing what's going to happen when I set a prioritization of some sort until I do it live. Methanar fucked around with this message at 20:19 on Jul 15, 2017 |
|
#
?
Jul 15, 2017 20:14
|
|
|
Use your providers BGP action communities to influence what they do with your prefixes. https://onestep.net/communities/as7922/ https://us.ntt.net/support/policy/routing.cfm I'd link to HE but lulz they're too cheap to do it (and their lovely brocade backbone probably doesn't support it) You mentioned geography, you could send the community to prepend to some specific region via Comcast or NTT without prepending your entire ASN which may net you more success. Also stop making GBS threads on the internet and send an aggregate route of your entire size if you can sincerely, my TCAM 
|
|
#
?
Jul 15, 2017 21:21
|
|
|
w/r/t deagg, your t-cam is less important than my WAN spend. Install as-stats and throw some sflow at it. You'll be out an hour or two and it'll help you immensely with knowing which far end networks are using which circuits on your network. And yeah, HE is fairly garbage tier. I could peer with them for free at all my sites, but tbh I don't want my packets on their network.
|
|
#
?
Jul 15, 2017 21:23
|
|
|
Any Brocade users out there that have actually configured QOS on them? A previous network engineer bought several ICX6650's a few years back and we're stuck with those oddballs on our network. Anyhow, trying to find docs on default queue mappings on this platform. It has 8 queues, defaults to 7/6 as strict, 5-0 with %. Trying to determine its default mappings for network control traffic, what if any default it uses for EF and AF and so on. It does let me remap them to whatever, but preferring to follow its defaults as best I can. Some docs for some platforms say 7 is Strict for stacking (which we dont use), which makes me guess 6 is strict for NC, but who knows! PS I hate these things and I'm glad they're dead, but I probably need to keep these small handful for another year or so.
|
|
#
?
Jul 18, 2017 14:43
|
|
|
Welp Broadcomm's acquisition of Brocade will eventually solve all your problems. Apparently they're killing off all of their product lines, including the last bits of Vyatta
|
|
#
?
Jul 19, 2017 06:07
|
|
|
CrazyLittle posted:Welp Broadcomm's acquisition of Brocade will eventually solve all your problems. Apparently they're killing off all of their product lines, including the last bits of Vyatta This makes me beyond happy. I have to deal with their lovely ServerIron ADX's at work all the time. Constant hardware failures and dumbass software bugs.
|
|
#
?
Jul 19, 2017 07:23
|
|
|
Which bits of Brocade went over to Extreme? I thought Vyatta was included in that.
|
|
#
?
Jul 19, 2017 08:12
|
|
|
Thanks Ants posted:Which bits of Brocade went over to Extreme? I thought Vyatta was included in that. It was all the data center products, but I can't see anywhere where it lists specific products. E: best I could find http://www.extremenetworks.com/extreme-networks-brocade-acquisition-faq/ quote:What exactly is Extreme Networks acquiring?
|
|
#
?
Jul 19, 2017 12:44
|
|
|
Proteus Jones posted:It was all the data center products, but I can't see anywhere where it lists specific products. http://about.att.com/story/att_to_acquire_vyatta_software_technology_from_brocade.html Vyatta went to AT&T.
|
|
#
?
Jul 19, 2017 17:12
|
|
|
Prescription Combs posted:This makes me beyond happy. I have to deal with their lovely ServerIron ADX's at work all the time. Constant hardware failures and dumbass software bugs. I think the ServerIrons go all the way back to Foundry Networks days.
|
|
#
?
Jul 19, 2017 19:22
|
|
|
Fun facts about the ADX: -Before 12.5 firmware, High Availability setups didn't sync the full configuration. Notably, you had to manually copy SSL certs/keys/profiles to both units. If your co-worker wasn't paying attention when he or she added an SSL profile to the primary unit, you'd end up with a lot of broken sites in a failover scenario. -When TLS rollout became a Big Deal after Heartbleed and all that mess, it took Brocade something like a year (?) to release firmware that supported higher-end ciphers. This is because (I was told) the ADX is built on some kind of godawful PowerPC chip, and they literally could not find anyone who knew how to code on it anymore. -Speaking of bad chips, the SSL accelerator on the ADX is so lovely that the loving thing could barely do upward of like 200 TPS or some god awful number when they first rolled out the new EC ciphers. They had to add code so that new ciphers used the regular processor cores in addition to the SSL processor to get decent TPS out of it. Basically if the ADX is dead, I will dance on its' grave.
|
|
#
?
Jul 19, 2017 21:10
|
|
|
1000101 posted:http://about.att.com/story/att_to_acquire_vyatta_software_technology_from_brocade.html rip
|
|
#
?
Jul 20, 2017 22:41
|
|
|
Methanar posted:Basically I don't know what I'm doing. A few days ago I set up another 10g link and did some rebalancing of how outbound traffic is sent to better spread it all across my now 5 links. It was less than successful for my first few attempts What sort of real-time traffic are you sending that's filling multiple 10G links?
|
|
#
?
Jul 21, 2017 00:18
|
|
|
Lots of video and webRTC
|
|
#
?
Jul 21, 2017 01:30
|
|
|
falz posted:PS I hate these things and I'm glad they're dead, but I probably need to keep these small handful for another year or so. I really liked Brocade FC switches and MPRs, nice GUI and CLI, never had any significant issues outside of one or two dodgy SFPs. Never used their IP stuff though so yeah.
|
|
#
?
Jul 21, 2017 02:18
|
|
|
gently caress Vyatta.
|
|
#
?
Jul 21, 2017 03:05
|
|
|
Silkworms were good
|
|
#
?
Jul 21, 2017 11:18
|
|
|
cheese-cube posted:I really liked Brocade FC switches and MPRs, nice GUI and CLI, never had any significant issues outside of one or two dodgy SFPs. Pretty much all of their stuff is acquisitions and they slapped together an OS that's 90% similar from a CLI perspective but they only work 50% the same. Anyhow, somebrocadeguy came out of the woodwork and answered my question in foundry-nsp if anyone else was curious. Why this poo poo doesn't seem to be published in their standard docs I do not know. https://puck.nether.net/pipermail/foundry-nsp/2017-July/009794.html
|
|
#
?
Jul 21, 2017 13:34
|
|
|
Actually reading that kind of makes sense with my experience which was via Brocade gear re-branded for IBM. They (Brocade) published some extremely specific and relevant errata regarding their products only via IBM's website. For example, port fillword settings for 8Gb FC compatibility with IBM SVC kit (Including Storwize V7000). Also the feature licensing for Brocade MPRs was obscene. At one point I caught out our VAR for loving up SFP and port licenses but copping that cost still didn't bite into their (IBMs) margin. Still, I really miss working with FC
|
|
#
?
Jul 21, 2017 16:36
|
|
|
Brocade for SPs is pretty much dead. They removed our account team and didn't even bother to tell us. We asked our SE to push a TAC case for us and he mentioned that he was off our account. We were a fairly decent install base for them. Cisco isn't even paying out for replacing Brocade equipment this FY. PO went to Cisco last week for 10x ASR9ks and an assortment of other things.
|
|
#
?
Jul 24, 2017 02:00
|
|
|
Partycat posted:If they are secured messages I don't believe you can archive them that way. Nvm, it was working perfectly. mythicknight fucked around with this message at 15:14 on Jul 28, 2017 |
|
#
?
Jul 25, 2017 17:01
|
|
|
A neat thing I came across in JunOS. me@core1a> show version and haiku Hostname: core1a Model: mx5-t Junos: 13.3R8.7 JUNOS Base OS boot [13.3R8.7] JUNOS Base OS Software Suite [13.3R8.7] JUNOS Kernel Software Suite [13.3R8.7] JUNOS Crypto Software Suite [13.3R8.7] JUNOS Packet Forwarding Engine Support (MX80) [13.3R8.7] JUNOS Online Documentation [13.3R8.7] JUNOS Services Application Level Gateways [13.3R8.7] JUNOS Services Jflow Container package [13.3R8.7] JUNOS Services Stateful Firewall [13.3R8.7] JUNOS Services NAT [13.3R8.7] JUNOS Services RPM [13.3R8.7] JUNOS Services Crypto [13.3R8.7] JUNOS Services SSL [13.3R8.7] JUNOS Services IPSec [13.3R8.7] JUNOS Routing Software Suite [13.3R8.7] One fish in the tank Will he last another week Poor little mutant
|
|
#
?
Jul 27, 2017 21:47
|
|
|
I'm going to 1-up you with Aristacode:
|
|
#
?
Jul 27, 2017 22:09
|
|
|
|
| # ? May 31, 2024 06:29 |
|
|
ate poo poo on live tv posted:A neat thing I came across in JunOS. Well this just made my day.
|
|
#
?
Jul 27, 2017 23:22
|
|
